okta · aniket-okta · Aug 19, 2025 · Aug 19, 2025 · Aug 20, 2025 · Aug 20, 2025
diff --git a/.circleci/config.yaml b/.circleci/config.yaml
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -0,0 +1,297 @@
+version: 2.1
+
+orbs:
+  python: circleci/python@2.0.3
+  aws-cli: circleci/aws-cli@5.1
+
+executors:
+  dotnet-executor:
+    docker:
+      - image: mcr.microsoft.com/dotnet/sdk:6.0
+
+  android-executor:
+    docker:
+      - image: cimg/android:2025.01
+
+  macos-executor:
+    macos:
+      xcode: 14.3.0
+
+jobs:
+  build-core:
+    executor: dotnet-executor
+    steps:
+      - run:
+          name: Manual HTTPS checkout (avoid SSH)
+          command: |
+            git --version
+            rm -rf .git || true
+            git init .
+            git remote add origin https://github.com/$CIRCLE_PROJECT_USERNAME/$CIRCLE_PROJECT_REPONAME.git
+            git fetch --depth=1 origin $CIRCLE_SHA1
+            git checkout --force $CIRCLE_SHA1
+      - run: 
+          name: dotnet version
+          command: dotnet --version
+      - run:
+          name: Restore dependencies
+          command: |
+            dotnet restore ./Okta.Xamarin/Okta.Xamarin/Okta.Xamarin.csproj
+            dotnet restore ./Okta.Xamarin/Tests/Okta.Xamarin.Test/Okta.Xamarin.Test.csproj
+      - run:
+          name: Build core projects
+          command: |
+            dotnet build ./Okta.Xamarin/Okta.Xamarin/Okta.Xamarin.csproj
+            dotnet build ./Okta.Xamarin/Tests/Okta.Xamarin.Test/Okta.Xamarin.Test.csproj
+      - persist_to_workspace:
+          root: .
+          paths:
+            - "*"
+
+  build-android:
+    executor: android-executor
+    steps:
+      - run:
+          name: Install .NET 6 SDK
+          command: |
+            # Install .NET 6 on the Android image
+            curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --version 6.0.428
+            echo 'export PATH="$HOME/.dotnet:$PATH"' >> ~/.bashrc
+            export PATH="$HOME/.dotnet:$PATH"
+            dotnet --version
+      - run:
+          name: Manual HTTPS checkout (avoid SSH)
+          command: |
+            git --version
+            rm -rf .git || true
+            git init .
+            git remote add origin https://github.com/$CIRCLE_PROJECT_USERNAME/$CIRCLE_PROJECT_REPONAME.git
+            git fetch --depth=1 origin $CIRCLE_SHA1
+            git checkout --force $CIRCLE_SHA1
+      - run:
+          name: Install Xamarin Android workload
+          command: |
+            export PATH="$HOME/.dotnet:$PATH"
+            dotnet workload install android --skip-sign-check
+      - run:
+          name: Restore Android project dependencies
+          command: |
+            export PATH="$HOME/.dotnet:$PATH"
+            # Install mono and MSBuild for .NET Framework 4.6.1 support
+            sudo apt-get update
+            sudo apt-get install -y mono-devel mono-complete msbuild
+
+            echo "Restoring core Xamarin project first..."
+            dotnet restore ./Okta.Xamarin/Okta.Xamarin/Okta.Xamarin.csproj
+
+            echo "Restoring Xamarin.Android project..."
+            dotnet restore ./Okta.Xamarin/Okta.Xamarin.Android/Okta.Xamarin.Android.csproj
+
+            echo "Restoring Android UITest project (uses .NET Framework 4.6.1)..."
+            # The UITest project targets .NET Framework 4.6.1, use MSBuild for restore
+            msbuild ./Okta.Xamarin/Tests/Okta.Xamarin.UITest.Android/Okta.Xamarin.UITest.Android.csproj -t:restore -p:RestorePackagesConfig=true || echo "Warning: UITest NuGet restore failed, continuing..."
+      - run:
+          name: Build Android projects
+          command: |
+            export PATH="$HOME/.dotnet:$PATH"
+            echo "Building Xamarin.Android project..."
+            dotnet build ./Okta.Xamarin/Okta.Xamarin.Android/Okta.Xamarin.Android.csproj --configuration Release --no-restore
+
+            echo "Building Android UITest project with MSBuild (uses .NET Framework 4.6.1)..."
+            # The UITest project uses .NET Framework 4.6.1, so use MSBuild via mono
+            msbuild ./Okta.Xamarin/Tests/Okta.Xamarin.UITest.Android/Okta.Xamarin.UITest.Android.csproj -p:Configuration=Release || echo "Warning: UITest build failed, but main project succeeded"
+
+            echo "Android build completed (some warnings expected for legacy test projects)"
+      - persist_to_workspace:
+          root: .
+          paths:
+            - "*"
+
+  build-ios:
+    executor: macos-executor
+    steps:
+      - run:
+          name: Manual HTTPS checkout (avoid SSH)
+          command: |
+            git --version
+            rm -rf .git || true
+            git init .
+            git remote add origin https://github.com/$CIRCLE_PROJECT_USERNAME/$CIRCLE_PROJECT_REPONAME.git
+            git fetch --depth=1 origin $CIRCLE_SHA1
+            git checkout --force $CIRCLE_SHA1
+      - run:
+          name: Install .NET 6 and Xamarin workloads
+          command: |
+            # Install .NET 6
+            curl -sSL https://dot.net/v1/dotnet-install.sh | bash /dev/stdin --version 6.0.428
+            echo 'export PATH="$HOME/.dotnet:$PATH"' >> ~/.bashrc
+            echo 'export PATH="$HOME/.dotnet:$PATH"' >> ~/.zshrc
+            export PATH="$HOME/.dotnet:$PATH"
+
+            # Verify .NET installation
+            dotnet --version
+
+            # Install Xamarin iOS workload (may fail, that's expected in CI)
+            dotnet workload install ios --skip-sign-check || echo "iOS workload installation failed (expected in CI)"
+
+            # List installed workloads for debugging
+            dotnet workload list || echo "Could not list workloads"
+      - run:
+          name: Analyze project files
+          command: |
+            export PATH="$HOME/.dotnet:$PATH"
+
+            echo "=== Analyzing project target frameworks ==="
+            echo "iOS project target framework:"
+            grep -i "TargetFramework" ./Okta.Xamarin/Okta.Xamarin.iOS/Okta.Xamarin.iOS.csproj || echo "No target framework found"
+
+            echo "iOS UITest project target framework:"
+            grep -i "TargetFramework" ./Okta.Xamarin/Tests/Okta.Xamarin.UITest.iOS/Okta.Xamarin.UITest.iOS.csproj || echo "No target framework found"
+      - run:
+          name: Attempt to build iOS projects
+          command: |
+            export PATH="$HOME/.dotnet:$PATH"
+
+            echo "=== Attempting to restore and build Xamarin.iOS project ==="
+            if dotnet restore ./Okta.Xamarin/Okta.Xamarin.iOS/Okta.Xamarin.iOS.csproj; then
+              echo "iOS project restore successful"
+              if dotnet build ./Okta.Xamarin/Okta.Xamarin.iOS/Okta.Xamarin.iOS.csproj --configuration Release --no-restore; then
+                echo "✅ iOS project built successfully!"
+              else
+                echo "❌ iOS project build failed (expected without proper iOS SDK setup)"
+              fi
+            else
+              echo "❌ iOS project restore failed (expected without proper iOS SDK setup)"
+            fi
+
+            echo ""
+            echo "=== Attempting to restore and build iOS UITest project ==="
+            if dotnet restore ./Okta.Xamarin/Tests/Okta.Xamarin.UITest.iOS/Okta.Xamarin.UITest.iOS.csproj; then
+              echo "iOS UITest project restore successful"
+              if dotnet build ./Okta.Xamarin/Tests/Okta.Xamarin.UITest.iOS/Okta.Xamarin.UITest.iOS.csproj --configuration Release --no-restore; then
+                echo "✅ iOS UITest project built successfully!"
+              else
+                echo "❌ iOS UITest project build failed"
+                echo "This is expected because it targets .NET Framework 4.6.1 which is not available on macOS"
+              fi
+            else
+              echo "❌ iOS UITest project restore failed"
+              echo "This is expected because it targets .NET Framework 4.6.1 which is not available on macOS"
+            fi
+
+            echo ""
+            echo "=== iOS Build Summary ==="
+            echo "iOS builds in CI are challenging because:"
+            echo "1. Xamarin.iOS requires Apple developer certificates for real builds"
+            echo "2. UITest project targets .NET Framework 4.6.1 (Windows/.NET Framework only)"
+            echo "3. Full iOS builds require Xcode with iOS SDK properly configured"
+            echo "4. CI environments don't have the necessary Apple signing certificates"
+            echo ""
+            echo "This step completed successfully for workflow continuation."
+      - persist_to_workspace:
+          root: .
+          paths:
+            - "*"
+
+  reversing-labs:
+    executor: dotnet-executor
+    steps:
+      - attach_workspace:
+          at: .
+      # Necessary to Install rl wrapper   
+      - run:
+          name: Install Python
+          command: |
+            apt-get update
+            apt-get install -y curl python3 python3-pip unzip
+            pip3 install --upgrade pip
+      # Download the scanner from Okta Security
+      - run:
+          name: Download Reverse Labs Scanner
+          command: |
+            curl https://dso-resources.oktasecurity.com/scanner \
+              -H "x-api-key: $DSO_RLSECURE_TOKEN" \
+              --output rl_wrapper-0.0.2+35ababa-py3-none-any.whl
+      # Install the wrapper that was downloaded
+      - run:
+          name: Install RL Wrapper
+          command: |
+            pip3 install ./rl_wrapper-0.0.2+35ababa-py3-none-any.whl
+      # Setup the AWS profile
+      - aws-cli/setup:
+          profile_name: default
+          role_arn: $AWS_ARN
+          region: us-east-1
+      # Get the credentials and save to env
+      - run: >-
+          eval "$(aws configure export-credentials --profile default --format env)" 2> /dev/null
+      # Run the wrapper, do not change anything here
+      - run:
+          name: Run Reversing Labs Wrapper Scanner
+          command: |
+            rl-wrapper \
+              --artifact ${CIRCLE_WORKING_DIRECTORY/#\~/$HOME} \
+              --name $CIRCLE_PROJECT_REPONAME\
+              --version $CIRCLE_SHA1\
+              --repository $CIRCLE_PROJECT_USERNAME/$CIRCLE_PROJECT_REPONAME \
+              --commit $CIRCLE_SHA1 \
+              --build-env "circleci" \
+              --suppress_output
+
+  snyk-scan:
+    docker:
+      - image: cimg/python:3.10
+    steps:
+      - attach_workspace:
+          at: .
+      - run:
+          name: Install Snyk CLI
+          command: |
+            npm install -g snyk
+            snyk --version
+      - run:
+          name: Run Snyk security scan
+          command: |
+            # Authenticate with Snyk token
+            snyk auth $SNYK_TOKEN
+
+            # Run Snyk monitor on all detected project types
+            snyk monitor --all-projects --detection-depth=4 || echo "Snyk monitor completed with warnings"
+
+            echo "Snyk scan completed - check Snyk dashboard for results"
+
+workflows:
+  "Complete Build & Security Scan":
+    jobs:
+      - build-core
+      - build-android:
+          requires:
+            - build-core
+      # iOS build is informational only - doesn't block security scans
+      - build-ios:
+          requires:
+            - build-core
+      - snyk-scan:
+          name: execute-snyk
+          context:
+            - static-analysis
+          requires:
+            - build-core
+            - build-android
+
+  "Malware Scanner":
+    jobs:
+      - build-core
+      - build-android:
+          requires:
+            - build-core
+      # iOS build is informational only - doesn't block malware scan
+      - build-ios:
+          requires:
+            - build-core
+      - reversing-labs:
+          requires:
+            - build-core
+            - build-android
+          context:
+            - static-analysis
diff --git a/.vscode/settings.json b/.vscode/settings.json
@@ -0,0 +1,3 @@
+{
+    "dotnet.preferCSharpExtension": true
+}